How do I configure bind9 on Redhat 5

**pospatty** · 04-23-2009

I have installed bind9 9.4.1 and named will not start. Can someone help or point me in the right direction.

named -u named -g
23-Apr-2009 07:19:10.568 starting BIND 9.4.1 -u named -g
23-Apr-2009 07:19:10.570 loading configuration from '/etc/named.conf'
23-Apr-2009 07:19:10.570 /etc/named.conf:8: unknown key 'rndckey'
23-Apr-2009 07:19:10.571 loading configuration: failure
23-Apr-2009 07:19:10.571 exiting (due to fatal error)

**pospatty** · 04-23-2009

Update:

Still can not get named to start.

/etc/named.conf is configured.

/etc/rndc.conf is configured.

But I still get the same error in /var/log/messages:

Apr 21 13:20:39 int16048 named[17048]: starting BIND 9.4.1 -u named -t /chroot/named -c /etc/named.conf
Apr 21 13:20:39 int16048 named[17048]: loading configuration from '/etc/named.conf'
Apr 21 13:20:39 int16048 named[17048]: /etc/named.conf:14: unknown key 'rndc-key
'
Apr 21 13:20:39 int16048 named[17048]: loading configuration: failure
Apr 21 13:20:39 int16048 named[17048]: exiting (due to fatal error)
Apr 21 13:26:41 int16048 named[17073]: starting BIND 9.4.1 -u named -t /chroot/named -c /etc/named.conf

Any suggestions or help would be appreciated.

**pospatty** · 04-23-2009

Here are copies of my named.conf, rndc.conf, rndc.key

/etc/named.conf
options {
directory "/var/named";
};

controls {
inet 127.0.0.1 allow { localhost; } keys { rndckey; };
};

zone "tmp.com" in {
type master;
file "db.tmp";
};

zone "0.0.127.in-addr-arpa" in {
type master;
file "db.127.0.0";
};

inclue "/etc/rndc.key";

****

/etc/rndc.conf
# Start of rndc.conf
key "rndc-key" {
algorithm hmac-md5;
secret "vrCHTR0mYdf3/nGEdRcszA==";
};

options {
default-server localhost;
default-key "rndc-key";
};

server localhosts {
key "rndc-key";
};

# End of rndc.conf

# Use with the following in named.conf, adjusting the allow list as needed:
# key "rndc-key" {
# algorithm hmac-md5;
# secret "vrCHTR0mYdf3/nGEdRcszA==";
# };
#
# controls {
# inet 127.0.0.1 port 953
# allow { 127.0.0.1; } keys { "rndc-key"; };
# };
# End of named.conf

***

/etc/rndc.key
key rndc-key {
algorithm "hmac-md5";
secret "uNg5mX0WXRI419OgzDyXRg==";
};

*

all of these files were copied to /var/named/chroot/etc

**Lazydog** · 04-23-2009

I have noticed that you have a mistake in your named.conf file.
At the end you have 'inclue "/etc/rndc.key";'.
This should be 'include "/etc/rndc.key";'.

Also your keys are not the same in rndc.conf and rndc.key files.
They need to be the same.

**pospatty** · 04-23-2009

Originally Posted by Lazydog

I have noticed that you have a mistake in your named.conf file.
At the end you have 'inclue "/etc/rndc.key";'.
This should be 'include "/etc/rndc.key";'.

Also your keys are not the same in rndc.conf and rndc.key files.
They need to be the same.

Thanks for the good eyes. I made the corrections.

[root@int16048 init.d]# diff /etc/named.conf /var/named/chroot/etc/named.conf
[root@int16048 init.d]# diff /etc/rndc.conf /var/named/chroot/etc/rndc.conf
[root@int16048 init.d]# diff /etc/rndc.key /var/named/chroot/etc/rndc.key
[root@int16048 init.d]#

I still get the same error when starting named. Any ideas? Thanks in advance for your help.

Apr 23 13:30:48 int16048 named[2854]: starting BIND 9.4.1 -u named -t /chroot/named -c /etc/named.conf
Apr 23 13:30:48 int16048 named[2854]: loading configuration from '/etc/named.conf'
Apr 23 13:30:48 int16048 named[2854]: /etc/named.conf:14: unknown key 'rndc-key'
Apr 23 13:30:48 int16048 named[2854]: loading configuration: failure
Apr 23 13:30:48 int16048 named[2854]: exiting (due to fatal error)
[root@int16048 init.d]#

**Lazydog** · 04-23-2009

Please post just your /var/named/chroot/etc/named.conf file.

**pospatty** · 04-24-2009

Originally Posted by Lazydog

Please post just your /var/named/chroot/etc/named.conf file.

Hi and thanks for your assistance. Here is the output from my file.

[root@int16048 /]# more /var/named/chroot/etc/named.conf
options {
directory "/var/named";
};

controls {
inet 127.0.0.1 allow { localhost; } keys { rndckey; };
};

zone "tmp.com" in {
type master;
file "db.tmp";
};

zone "0.0.127.in-addr-arpa" in {
type master;
file "db.127.0.0";
};

zone "172.24.160.in-addr.arpa." in {
type master;
file "db.160.24.172";
};

zone "." in {
type hint;
file "db.cache";
};

include "/etc/rndc.key";
[root@int16048 /]#

**Lazydog** · 04-24-2009

Originally Posted by pospatty

Hi and thanks for your assistance.

Sure thing, you are welcome.

controls {
inet 127.0.0.1 allow { localhost; } keys { rndckey; };
};

You see how you have your keys defined as rndckey but in your rndc config files you have it defined as rdnc-key?

Change this to match what you have in your rdnc config files.

Thread Tools

Display

How do I configure bind9 on Redhat 5

Posting Permissions